Commit message (Expand) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Update VERSION to 12.1.16v12.1.16 | GitLab Release Tools Bot | 2019-12-12 | 1 | -1/+1 |
* | Update CHANGELOG.md for 12.1.16 | GitLab Release Tools Bot | 2019-12-12 | 3 | -10/+8 |
* | Adds message to indicate we are skipping release 12.1.15 | John T Skarbek | 2019-12-12 | 1 | -0/+4 |
* | Revert "Update CHANGELOG.md for 12.1.15" | John T Skarbek | 2019-12-12 | 3 | -8/+10 |
* | Revert "Update VERSION to 12.1.15" | John T Skarbek | 2019-12-12 | 1 | -1/+1 |
* | Update VERSION to 12.1.15v12.1.15 | GitLab Release Tools Bot | 2019-12-11 | 1 | -1/+1 |
* | Update CHANGELOG.md for 12.1.15 | GitLab Release Tools Bot | 2019-12-11 | 3 | -10/+8 |
* | Merge branch '12-1-stable-backport-reliable-fetcher' into '12-1-stable' | John Skarbek | 2019-12-10 | 12 | -46/+47 |
|\ | |||||
| * | Fix specs, backporting | Valery Sizov | 2019-12-09 | 10 | -43/+44 |
| * | Backport reliable fetcher | Valery Sizov | 2019-12-09 | 2 | -3/+3 |
|/ | |||||
* | Merge branch 'security-stored-xss-using-find-file-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-10-24 | 2 | -1/+7 |
|\ | |||||
| * | Sanitize search text to prevent XSS | samantha-dev | 2019-10-10 | 2 | -1/+7 |
* | | Merge branch 'security-xss-grafana-url-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-10-24 | 8 | -15/+189 |
|\ \ | |/ |/| | |||||
| * | Handle Stored XSS for Grafana URL in settings | David Wilkins | 2019-10-24 | 8 | -15/+189 |
|/ | |||||
* | Merge remote-tracking branch 'dev/12-1-stable' into 12-1-stable | GitLab Release Tools Bot | 2019-10-07 | 2 | -1/+5 |
|\ | |||||
| * | Update VERSION to 12.1.14v12.1.14 | GitLab Release Tools Bot | 2019-10-07 | 1 | -1/+1 |
| * | Update CHANGELOG.md for 12.1.14 | GitLab Release Tools Bot | 2019-10-07 | 1 | -0/+4 |
|/ | |||||
* | Merge remote-tracking branch 'dev/12-1-stable' into 12-1-stable | GitLab Release Tools Bot | 2019-10-02 | 8 | -3/+213 |
|\ | |||||
| * | Update VERSION to 12.1.13v12.1.13 | GitLab Release Tools Bot | 2019-10-01 | 1 | -1/+1 |
| * | Update CHANGELOG.md for 12.1.13 | GitLab Release Tools Bot | 2019-10-01 | 2 | -5/+7 |
| * | Merge branch 'security-29491-12-1-ce' into '12-1-stable' | Marin Jankovski | 2019-10-01 | 7 | -2/+210 |
| |\ |/ / | |||||
| * | EE port: Fix private feature Elasticsearch leak | Mark Chao | 2019-10-01 | 7 | -2/+210 |
|/ | |||||
* | Merge branch 'fix_expired_gpg_key_specs' into 'master' | Stan Hu | 2019-09-30 | 2 | -151/+270 |
* | Update VERSION to 12.1.12v12.1.12 | GitLab Release Tools Bot | 2019-09-26 | 1 | -1/+1 |
* | Update CHANGELOG.md for 12.1.12 | GitLab Release Tools Bot | 2019-09-26 | 12 | -58/+17 |
* | Merge branch 'security-gitaly-1-53-4' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 2 | -1/+6 |
|\ | |||||
| * | Fix Gitaly SearchBlobs flag RPC injection | Paul Okstad | 2019-09-24 | 2 | -1/+6 |
* | | Merge branch 'security-sarcila-verify-saml-request-origin-12-1' into '12-1-st... | GitLab Release Tools Bot | 2019-09-26 | 12 | -40/+303 |
|\ \ | |||||
| * | | Validate that SAML requests are originated from gitlab | Sebastian Arcila Valenzuela | 2019-09-16 | 12 | -40/+303 |
* | | | Merge branch 'security-xss-mermaid-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 5 | -318/+1642 |
|\ \ \ | |||||
| * | | | Upgrade mermaid to prevent xss attack | Rajat Jain | 2019-09-10 | 5 | -318/+1642 |
* | | | | Merge branch 'security-12717-fix-confidential-issue-assignee-visible-to-guest... | GitLab Release Tools Bot | 2019-09-26 | 3 | -1/+47 |
|\ \ \ \ | |||||
| * | | | | Display only participants that user has permission to see | Alexandru Croitor | 2019-09-20 | 3 | -1/+47 |
* | | | | | Merge branch 'security-bypass-email-verification-using-salesforce-12-1' into ... | GitLab Release Tools Bot | 2019-09-26 | 6 | -24/+78 |
|\ \ \ \ \ | |||||
| * | | | | | Bring back unary operator | Małgorzata Ksionek | 2019-09-11 | 1 | -2/+2 |
| * | | | | | Switch unary operator to more verbose way | Małgorzata Ksionek | 2019-09-11 | 1 | -2/+2 |
| * | | | | | Bring back unary operator | Małgorzata Ksionek | 2019-09-11 | 1 | -2/+2 |
| * | | | | | Add checking for email_verified key | Małgorzata Ksionek | 2019-09-11 | 6 | -24/+78 |
| | |_|/ / | |/| | | | |||||
* | | | | | Merge branch 'security-mermaid-block-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 3 | -1/+48 |
|\ \ \ \ \ | |||||
| * | | | | | Only render fixed number of mermaid blocks | Rajat Jain | 2019-09-19 | 3 | -1/+48 |
| |/ / / / | |||||
* | | | | | Merge branch 'security-12718-project-milestones-disclosed-via-groups-12-1-ce'... | GitLab Release Tools Bot | 2019-09-26 | 4 | -6/+115 |
|\ \ \ \ \ | |||||
| * | | | | | Hide disabled project milestones in project settings on group level | Alexandru Croitor | 2019-09-26 | 4 | -6/+115 |
| | |_|_|/ | |/| | | | |||||
* | | | | | Merge branch 'security-64938-dont-disclose-path-12-1-ce' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 3 | -1/+40 |
|\ \ \ \ \ | |||||
| * | | | | | Redirect user to root path after unsubscribing from private resource | Alexandru Croitor | 2019-09-20 | 3 | -1/+40 |
| | |_|/ / | |/| | | | |||||
* | | | | | Merge branch 'security-12630-private-system-note-disclosed-in-graphql-12-1-ce... | GitLab Release Tools Bot | 2019-09-26 | 5 | -0/+178 |
|\ \ \ \ \ | |||||
| * | | | | | Add policy check if cross reference system notes are accessible | Alexandru Croitor | 2019-09-25 | 5 | -0/+178 |
| | |/ / / | |/| | | | |||||
* | | | | | Merge branch 'security-fp-stop-jobs-when-blocking-user-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 5 | -1/+68 |
|\ \ \ \ \ | |||||
| * | | | | | Cancel all running CI jobs when user is blocked | Fabio Pitino | 2019-09-24 | 5 | -1/+68 |
| | |/ / / | |/| | | | |||||
* | | | | | Merge branch 'security-cross-reference-fix-ce-12-1' into '12-1-stable' | GitLab Release Tools Bot | 2019-09-26 | 8 | -34/+284 |
|\ \ \ \ \ | |_|/ / / |/| | | | | |||||
| * | | | | Filter not accessible label events | Jan Provaznik | 2019-09-24 | 8 | -34/+284 |
| |/ / / |